Want to learn about all of the latest security tools and techniques? This is the show for you! We show you how to install, configure and use a wide variety of security tools for both offense and defense. Whether you are a penetration tester or defending enterprise networks, this show will help you!
…
continue reading
1
Black Hat & DEF CON 2018 - Tradecraft Security Weekly #28
14:20
14:20
Spela senare
Spela senare
Listor
Gilla
Gillad
14:20
This is the Hacker Summer Camp 2018 edition of Tradecraft Security Weekly. In this week's episode Beau Bullock (@dafthack) talks about some of the more interesting items he saw come out of the Black Hat and DEF CON conferences this year. For Show Links: https://wiki.securityweekly.com/TS_Episode28
…
continue reading
1
Phishing 2FA Tokens with CredSniper - Tradecraft Security Weekly #25
19:06
19:06
Spela senare
Spela senare
Listor
Gilla
Gillad
19:06
Organizations are implementing two-factor on more and more web services. The traditional methods for phishing credentials is no longer good enough to gain access to user accounts if 2FA is setup. In this episode Mike Felch (@ustayready) and Beau Bullock (@dafthack) demonstrate a tool that Mike wrote called CredSniper that assists in cloning portals…
…
continue reading
1
Evading Network-Based Detection Mechanisms - Tradecraft Security Weekly #24
19:41
19:41
Spela senare
Spela senare
Listor
Gilla
Gillad
19:41
In this episode of Tradecraft Security Weekly hosts Beau Bullock (@dafthack) and Mike Felch (@ustayready) discuss methods for evading network-based detection mechanisms. Many commercial IDS/IPS devices do a pretty decent job of detecting standard pentesting tools like Nmap when no evasion options are used. Additionally, companies are doing a better…
…
continue reading
1
HTML5 Storage Exfil via XSS - Tradecraft Security Weekly #23
14:31
14:31
Spela senare
Spela senare
Listor
Gilla
Gillad
14:31
It is fairly common for pentesters to discover Cross-Site Scripting (XSS) vulnerabilities on web application assessments. Exploiting these issues potentially allow access to a user's session tokens enabling attackers to navigate a site as the victim in the context of the web application. In this episode the hosts Beau Bullock (@dafthack) & Mike Fel…
…
continue reading
1
Leaking Windows Creds Externally Via MS Office - Tradecraft Security Weekly #21
12:56
12:56
Spela senare
Spela senare
Listor
Gilla
Gillad
12:56
In this episode of Tradecraft Security Weekly, Mike Felch discusses with Beau Bullock about the possibilities of using framesets in MS Office documents to send Windows password hashes remotely across the Internet. This technique has the ability to bypass many common security controls so add it to your red team toolboxes. Mike Felch (@ustayready) Be…
…
continue reading
1
Google Event Injection - Tradecraft Security Weekly 20
13:12
13:12
Spela senare
Spela senare
Listor
Gilla
Gillad
13:12
Google provides the ability to automatically add events to a calendar directly from emails received by Gmail. This provides a unique situation for phishing attempts as most users haven't been trained to watch their calendar events for social engineering attempts. In this episode Beau Bullock (@dafthack) and Michael Felch (@ustayready) show how to i…
…
continue reading
1
Domain Fronting - Tradecraft Security Weekly #18
15:33
15:33
Spela senare
Spela senare
Listor
Gilla
Gillad
15:33
Domain fronting is a technique used to mask command and control (C2) traffic. It is possible for C2 channels to be proxied through CDN's like Cloudfront to make it appear like normal Internet traffic. It is very difficult to detect and block for defenders as it appears as if clients on a network are connecting to valid CDN domains. But, in reality …
…
continue reading
1
Cracking Password Hashes Efficiently - Tradecraft Security Weekly #17
16:00
16:00
Spela senare
Spela senare
Listor
Gilla
Gillad
16:00
If you are a penetration tester password cracking is something you will inevitably do. On most engagements we typically don't have months on end to crack passwords. In an effort to help be more efficient in your cracking techniques Beau Bullock (@dafthack) describes various ways to streamline your approach to cracking in episode 17 of Tradecraft Se…
…
continue reading
1
Automating Screenshots to Quickly Assess Many WebApps - Tradecraft Security Weekly #12
9:29
9:29
Spela senare
Spela senare
Listor
Gilla
Gillad
9:29
On penetration tests we are often-times faced with very large external or internal attack surfaces that are made up of multiple web applications. When there is a need to assess thousands of webapps quickly manually navigating each page with a browser would be very inefficient. In this episode of Tradecraft Security Weekly Beau Bullock (@dafthack) d…
…
continue reading
1
Situational Awareness with HostRecon - Tradecraft Security Weekly #7
11:00
11:00
Spela senare
Spela senare
Listor
Gilla
Gillad
11:00
After exploiting a system on a remote & unfamiliar network it is extremely important to gain situational awareness as quickly, and quietly as possible. This will help ensure success moving forward with other attacks. In this episode of Tradecraft Security Weekly Beau Bullock (@dafthack) will show how to use PowerShell to query information about the…
…
continue reading
1
Windows Privilege Escalation Techniques - Tradecraft Security Weekly #2
11:11
11:11
Spela senare
Spela senare
Listor
Gilla
Gillad
11:11
…
continue reading
1
Meterpreter with Categorized Domains & Trusted Certs - Tradecraft Security Weekly #4
12:06
12:06
Spela senare
Spela senare
Listor
Gilla
Gillad
12:06
It is common for organizations to proxy web traffic so they can place restrictions on what websites can be visited by employees. To make the management of allowing or denying access to a large number of sites easier many web proxies utilize categorization engines to group sites into various subjects. Uncategorized sites are generally blocked. In th…
…
continue reading
1
Attacking Exchange/OWA to Gain Access to AD Accounts - Tradecraft Security Weekly #3
12:39
12:39
Spela senare
Spela senare
Listor
Gilla
Gillad
12:39
Microsoft Exchange and Office365 are extremely popular products that organizations use for enterprise email. These services can be exploited by remote attackers to potentially gain access to Active Directory user credentials. In this Tradecraft Security Weekly episode Beau Bullock (@dafthack) demonstrates how to utilize MailSniper to enumerate inte…
…
continue reading
1
Public File Metadata Analysis - Tradecraft Security Weekly #1
11:18
11:18
Spela senare
Spela senare
Listor
Gilla
Gillad
11:18
Public File Metadata Analysis with PowerMeta - It is very common for organizations to post files (docx, pdf, xlsx, etc.) to publicly available websites on the Internet. Often times these organizations have not taken the time to strip the metadata attached to these files. This leaves the potential for remote attackers to discover sensitive informati…
…
continue reading